This is an archive of the discontinued LLVM Phabricator instance.

Differential D75044

[AArch64] __builtin_return_address for PAuth.
ClosedPublic

Authored by danielkiss on Feb 24 2020, 5:08 AM.

Details

Reviewers
ostannard
asl
olista01
nsz
nickdesaulniers
srhines
peter.smith
chill
ab
Commits
rG2a96f47c5ffc: [AArch64] __builtin_return_address for PAuth.
Summary

This change adds the support for __builtin_return_address
for ARMv8.3A Pointer Authentication.
Location of the authentication code in the pointer depends on
the system configuration, therefore a dedicated instruction is used for
effectively removing the authentication code without
authenticating the pointer.

Diff Detail

Event Timeline

danielkiss created this revision.Feb 24 2020, 5:08 AM
Herald added projects: Restricted Project, Restricted Project. · View Herald TranscriptFeb 24 2020, 5:08 AM
Herald added subscribers: llvm-commits, cfe-commits, jdoerfert and 2 others. · View Herald Transcript
danielkiss marked 2 inline comments as done.Feb 25 2020, 4:56 AM
danielkiss added inline comments.
clang/test/CodeGen/arm64-extractreturnaddress.c
15 ↗(On Diff #246183)

CHECK-NEXT: entry:
 CHECK-NEXT: ret i8* inttoptr (i64 42 to i8*)

16 ↗(On Diff #246183)

CHECK-PAC: %0 = call i8* @llvm.extractreturnaddress.p0i8.p0i8(i8* inttoptr (i64 42 to i8*))
 CHECK-PAC83: %0 = call i8* @llvm.extractreturnaddress.p0i8.p0i8(i8* inttoptr (i64 42 to i8*))
CHECK-BPROT8: %0 = call i8* @llvm.extractreturnaddress.p0i8.p0i8(i8* inttoptr (i64 42 to i8*))
 CHECK-BPROT83: %0 = call i8* @llvm.extractreturnaddress.p0i8.p0i8(i8* inttoptr (i64 42 to i8*))

danielkiss updated this revision to Diff 246685.Feb 26 2020, 5:37 AM
danielkiss added a reviewer: olista01.

rebased and test is updated.

danielkiss added reviewers: momchil.velikov, nsz.Feb 26 2020, 5:56 AM
danielkiss added reviewers: nickdesaulniers, srhines, peter.smith.Mar 20 2020, 3:50 PM
danielkiss edited reviewers, added: chill; removed: momchil.velikov.Apr 1 2020, 1:43 AM
danielkiss updated this revision to Diff 254921.Apr 3 2020, 2:41 PM

Rebased.

chill added a comment.Apr 7 2020, 8:01 AM

Needs a test in clang/test that __builtin_extract_return_address is translated to llvm.extractreturnaddress.

What if LLVM IR contains a call to llvm.extractreturnaddress, but the target is not AArch64?

llvm/include/llvm/CodeGen/ISDOpcodes.h
491–492

Needs a comment about EXTRACTRETURNADDR. And also a slightly different grouping, so the non-commented/undocumented things stand out.

chill added inline comments.Apr 7 2020, 8:03 AM
clang/lib/CodeGen/TargetInfo.cpp
5151 ↗(On Diff #254921)

Can drop the extra braces here.

5156 ↗(On Diff #254921)

Is this necessary, the intrinsic already has IntrNoMem?

chill added a comment.Apr 7 2020, 8:04 AM
In D75044#1966997, @chill wrote:

Needs a test in clang/test that __builtin_extract_return_address is translated to llvm.extractreturnaddress.

Nevermind, I'm blind.

danielkiss updated this revision to Diff 256069.Apr 8 2020, 10:49 AM

Rebased and address review comments.

danielkiss marked 4 inline comments as done.Apr 8 2020, 10:50 AM
danielkiss added inline comments.
llvm/include/llvm/CodeGen/ISDOpcodes.h
491–492

agree, I. added documentation for all now.

danielkiss updated this revision to Diff 266595.May 27 2020, 10:38 AM
danielkiss marked an inline comment as done.
danielkiss retitled this revision from [AArch64] __builtin_extract_return_addr for PAuth. to [AArch64] __builtin_return_address for PAuth..
danielkiss edited the summary of this revision. (Show Details)

Changing the implementation from builtin_extract_return_addr to builtin_return_address.
Stripping PAC in __builtin_return_address is a better solution, because:

  • we should not expose PAC bits to the user because it could be passed around and that would be an ABI break.
  • builtin_extract_return_addr has a pair, the builtin_frob_return_addr which won't be supported with PAC.

I'm thinking of adding a warning if __builtin_frob_return_addr is used with PAC on.
Same change will be proposed from gcc too.

danielkiss added a comment.May 28 2020, 4:59 AM

Related ticket for gcc: https://gcc.gnu.org/bugzilla/show_bug.cgi?id=94891

danielkiss added a comment.Jun 8 2020, 8:40 AM

patch for gcc: https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547404.html

danielkiss added a comment.Jul 20 2020, 12:56 AM

Patch for gcc is merged. https://gcc.gnu.org/git/?p=gcc.git;a=commitdiff;h=a70d5d81c41048556fd86eaa1036018a6bfba115

chill added a comment.EditedJul 21 2020, 3:43 PM

I'm afraid the patch does not work yet. For example, when the following program

void *f() {
	void g();
	g();
	return __builtin_return_address(0);
}

is compiled with

./bin/clang -target aarch64-eabi -march=armv8.3-a  -mbranch-protection=pac-ret -S -O2 h.c

The issue is that the definition of the instructions XPAC{D,I} is incorrect: it does not mention at all the operand to those insns.
Another problem is that the patch does not work with -O0. When compiling without optimisations, AArch64 backend used GlobalISel.

I have patches for these two issues. I'll post the one for XPAC{D,I} tomorrow and perhaps in a couple of days the GlobalISel one and we're good to go.

llvm/lib/Target/AArch64/AArch64ISelLowering.cpp
6495

We shouldn't be hardcoding the X0 register here. We already have the encoded return address in ReturnAddress
can simply do:

SDNode *St = DAG.getMachineNode(AArch64::XPACI, DL, VT, ReturnAddress);
6500

Rename Reg to Chain.

chill added a comment.Jul 22 2020, 1:30 AM
In D75044#2165496, @chill wrote:

The issue is that the definition of the instructions XPAC{D,I} is incorrect: it does not mention at all the operand to those insns.

Err, they do mention the operand, but only as an input one, it should be input/output.

chill added a parent revision: D84298: [AArch64] Fix operand definitions of XPACI/XPACD.Jul 22 2020, 1:44 AM
chill mentioned this in D84298: [AArch64] Fix operand definitions of XPACI/XPACD.Jul 22 2020, 1:47 AM
danielkiss updated this revision to Diff 280048.Jul 23 2020, 2:16 AM

fix review comments.

danielkiss marked 2 inline comments as done.Jul 23 2020, 2:17 AM
chill added a parent revision: D84395: [AArch64] Fix a machine verifier ICE when using __builtin_return_address with return address sign and authentication.Jul 23 2020, 10:05 AM
chill accepted this revision.Jul 23 2020, 10:21 AM

LGTM. Thanks!

This revision is now accepted and ready to land.Jul 23 2020, 10:21 AM
chill removed a parent revision: D84395: [AArch64] Fix a machine verifier ICE when using __builtin_return_address with return address sign and authentication.Jul 23 2020, 10:21 AM
chill mentioned this in D84502: [AArch64][GlobalISel] Implement __builtin_return_address for PAC-RET.Jul 29 2020, 8:35 AM
chill mentioned this in rGef4e66543541: [AArch64] Fix operand definitions of XPACI/XPACD.Jul 30 2020, 7:32 AM
chill requested changes to this revision.Jul 31 2020, 3:03 AM
chill added a reviewer: ab.

Let's postpone this just for a little bit, to settle on an approach to depth > 0.

This revision now requires changes to proceed.Jul 31 2020, 3:04 AM
chill added a comment.Jul 31 2020, 3:05 AM
In D75044#2186973, @chill wrote:

Let's postpone this just for a little bit, to settle on an approach to depth > 0.

This is with regard to https://reviews.llvm.org/D84502#inline-779900

danielkiss updated this revision to Diff 285332.Aug 13 2020, 4:35 AM

Always emit xpac* instructions as discussed in D84502.

chill accepted this revision.Aug 20 2020, 12:47 AM
This revision is now accepted and ready to land.Aug 20 2020, 12:47 AM
danielkiss updated this revision to Diff 288275.Aug 27 2020, 4:32 AM

updating tests too. check-llvm, check-clang passes.

danielkiss added a comment.Sep 4 2020, 4:33 AM

@chill Could you check the latest update? I think it should be submitted with D84502 together.

danielkiss added a comment.Sep 24 2020, 4:30 AM

@chill ping.

chill accepted this revision.Sep 24 2020, 6:05 AM
In D75044#2292302, @danielkiss wrote:

@chill ping.

Sorry, I thought about committing all PAC/BTI patches together, but there's no reason, is there?
So, let's go ahead and commit the two dealing with __builtin-return_address .

chill mentioned this in rGbd44558001e9: [AArch64][GlobalISel] Implement __builtin_return_address for PAC-RET.Sep 24 2020, 10:05 AM
Closed by commit rG2a96f47c5ffc: [AArch64] __builtin_return_address for PAuth. (authored by danielkiss). · Explain WhySep 24 2020, 2:24 PM
This revision was automatically updated to reflect the committed changes.
danielkiss added a commit: rG2a96f47c5ffc: [AArch64] __builtin_return_address for PAuth..

Revision Contents

PathSize
llvm/
include/
llvm/
CodeGen/
9 lines
lib/
Target/
AArch64/
31 lines
test/
CodeGen/
AArch64/
49 lines
5 lines
4 lines
5 lines

Diff 288275

llvm/include/llvm/CodeGen/ISDOpcodes.h

Show First 20 LinesShow All 80 Lines▼ Show 20 Linesenum NodeType {
/// FRAMEADDR, RETURNADDR - These nodes represent llvm.frameaddress and /// FRAMEADDR, RETURNADDR - These nodes represent llvm.frameaddress and
/// llvm.returnaddress on the DAG. These nodes take one operand, the index /// llvm.returnaddress on the DAG. These nodes take one operand, the index
/// of the frame or return address to return. An index of zero corresponds /// of the frame or return address to return. An index of zero corresponds
/// to the current function's frame or return address, an index of one to /// to the current function's frame or return address, an index of one to
/// the parent's frame or return address, and so on. /// the parent's frame or return address, and so on.
FRAMEADDR, FRAMEADDR,
RETURNADDR, RETURNADDR,
/// ADDROFRETURNADDR - Represents the llvm.addressofreturnaddress intrinsic.
/// This node takes no operand, returns a target-specific pointer to the
/// place in the stack frame where the return address of the current
/// function is stored.
ADDROFRETURNADDR, ADDROFRETURNADDR,
/// SPONENTRY - Represents the llvm.sponentry intrinsic. Takes no argument
/// and returns the stack pointer value at the entry of the current
/// function calling this intrinsic.
SPONENTRY, SPONENTRY,
/// LOCAL_RECOVER - Represents the llvm.localrecover intrinsic. /// LOCAL_RECOVER - Represents the llvm.localrecover intrinsic.
/// Materializes the offset from the local object pointer of another /// Materializes the offset from the local object pointer of another
/// function to a particular local object passed to llvm.localescape. The /// function to a particular local object passed to llvm.localescape. The
/// operand is the MCSymbol label used to represent this offset, since /// operand is the MCSymbol label used to represent this offset, since
/// typically the offset is not known until after code generation of the /// typically the offset is not known until after code generation of the
/// parent. /// parent.
▲ Show 20 LinesShow All 376 Lines▼ Show 20 Linesenum NodeType {
/// VECTOR. /// VECTOR.
INSERT_VECTOR_ELT, INSERT_VECTOR_ELT,
/// EXTRACT_VECTOR_ELT(VECTOR, IDX) - Returns a single element from VECTOR /// EXTRACT_VECTOR_ELT(VECTOR, IDX) - Returns a single element from VECTOR
/// identified by the (potentially variable) element number IDX. If the return /// identified by the (potentially variable) element number IDX. If the return
/// type is an integer type larger than the element type of the vector, the /// type is an integer type larger than the element type of the vector, the
/// result is extended to the width of the return type. In that case, the high /// result is extended to the width of the return type. In that case, the high
/// bits are undefined. /// bits are undefined.
/// ///
/// If VECTOR is a scalable vector, then IDX may be larger than the minimum /// If VECTOR is a scalable vector, then IDX may be larger than the minimum
chillUnsubmitted
Done
ReplyInline Actions

Needs a comment about EXTRACTRETURNADDR. And also a slightly different grouping, so the non-commented/undocumented things stand out.

chill: Needs a comment about `EXTRACTRETURNADDR`. And also a slightly different grouping, so the non…
danielkissAuthorUnsubmitted
Done
ReplyInline Actions

agree, I. added documentation for all now.

danielkiss: agree, I. added documentation for all now.
/// vector width. IDX is not first scaled by the runtime scaling factor of /// vector width. IDX is not first scaled by the runtime scaling factor of
/// VECTOR. /// VECTOR.
EXTRACT_VECTOR_ELT, EXTRACT_VECTOR_ELT,
/// CONCAT_VECTORS(VECTOR0, VECTOR1, ...) - Given a number of values of /// CONCAT_VECTORS(VECTOR0, VECTOR1, ...) - Given a number of values of
/// vector type with the same length and element type, this produces a /// vector type with the same length and element type, this produces a
/// concatenated vector result value, with length equal to the sum of the /// concatenated vector result value, with length equal to the sum of the
/// lengths of the input vectors. If VECTOR0 is a fixed-width vector, then /// lengths of the input vectors. If VECTOR0 is a fixed-width vector, then
▲ Show 20 LinesShow All 811 LinesShow Last 20 Lines

llvm/lib/Target/AArch64/AArch64ISelLowering.cpp

  • This file is larger than 256 KB, so syntax highlighting is disabled by default.
Show First 20 LinesShow All 6,463 Lines▼ Show 20 LinesSDValue AArch64TargetLowering::LowerRETURNADDR(SDValue Op,
SelectionDAG &DAG) const { SelectionDAG &DAG) const {
MachineFunction &MF = DAG.getMachineFunction(); MachineFunction &MF = DAG.getMachineFunction();
MachineFrameInfo &MFI = MF.getFrameInfo(); MachineFrameInfo &MFI = MF.getFrameInfo();
MFI.setReturnAddressIsTaken(true); MFI.setReturnAddressIsTaken(true);
EVT VT = Op.getValueType(); EVT VT = Op.getValueType();
SDLoc DL(Op); SDLoc DL(Op);
unsigned Depth = cast<ConstantSDNode>(Op.getOperand(0))->getZExtValue(); unsigned Depth = cast<ConstantSDNode>(Op.getOperand(0))->getZExtValue();
SDValue ReturnAddress;
if (Depth) { if (Depth) {
SDValue FrameAddr = LowerFRAMEADDR(Op, DAG); SDValue FrameAddr = LowerFRAMEADDR(Op, DAG);
SDValue Offset = DAG.getConstant(8, DL, getPointerTy(DAG.getDataLayout())); SDValue Offset = DAG.getConstant(8, DL, getPointerTy(DAG.getDataLayout()));
return DAG.getLoad(VT, DL, DAG.getEntryNode(), ReturnAddress = DAG.getLoad(
DAG.getNode(ISD::ADD, DL, VT, FrameAddr, Offset), VT, DL, DAG.getEntryNode(),
MachinePointerInfo()); DAG.getNode(ISD::ADD, DL, VT, FrameAddr, Offset), MachinePointerInfo());
} else {
// Return LR, which contains the return address. Mark it an implicit
// live-in.
unsigned Reg = MF.addLiveIn(AArch64::LR, &AArch64::GPR64RegClass);
ReturnAddress = DAG.getCopyFromReg(DAG.getEntryNode(), DL, Reg, VT);
} }
// Return LR, which contains the return address. Mark it an implicit live-in. // The XPACLRI instruction assembles to a hint-space instruction before
unsigned Reg = MF.addLiveIn(AArch64::LR, &AArch64::GPR64RegClass); // Armv8.3-A therefore this instruction can be safely used for any pre
return DAG.getCopyFromReg(DAG.getEntryNode(), DL, Reg, VT); // Armv8.3-A architectures. On Armv8.3-A and onwards XPACI is available so use
// that instead.
SDNode *St;
if (Subtarget->hasV8_3aOps()) {
St = DAG.getMachineNode(AArch64::XPACI, DL, VT, ReturnAddress);
} else {
// XPACLRI operates on LR therefore we must move the operand accordingly.
SDValue Chain =
chillUnsubmitted
Done
ReplyInline Actions

We shouldn't be hardcoding the X0 register here. We already have the encoded return address in ReturnAddress
can simply do:

SDNode *St = DAG.getMachineNode(AArch64::XPACI, DL, VT, ReturnAddress);
chill: We shouldn't be hardcoding the `X0` register here. We already have the encoded return address…
DAG.getCopyToReg(DAG.getEntryNode(), DL, AArch64::LR, ReturnAddress);
St = DAG.getMachineNode(AArch64::XPACLRI, DL, VT, Chain);
}
return SDValue(St, 0);
} }
chillUnsubmitted
Done
ReplyInline Actions

Rename Reg to Chain.

chill: Rename `Reg` to `Chain`.
/// LowerShiftRightParts - Lower SRA_PARTS, which returns two /// LowerShiftRightParts - Lower SRA_PARTS, which returns two
/// i64 values and take a 2 x i64 value to shift plus a shift amount. /// i64 values and take a 2 x i64 value to shift plus a shift amount.
SDValue AArch64TargetLowering::LowerShiftRightParts(SDValue Op, SDValue AArch64TargetLowering::LowerShiftRightParts(SDValue Op,
SelectionDAG &DAG) const { SelectionDAG &DAG) const {
assert(Op.getNumOperands() == 3 && "Not a double-shift!"); assert(Op.getNumOperands() == 3 && "Not a double-shift!");
EVT VT = Op.getValueType(); EVT VT = Op.getValueType();
unsigned VTBits = VT.getSizeInBits(); unsigned VTBits = VT.getSizeInBits();
▲ Show 20 LinesShow All 9,223 LinesShow Last 20 Lines

llvm/test/CodeGen/AArch64/aarch64-signedreturnaddress.ll

  • This file was added.
; RUN: llc < %s -mtriple=arm64-eabi -asm-verbose=false -mattr=v8.2a | FileCheck %s
; RUN: llc < %s -mtriple=arm64-eabi -asm-verbose=false -mattr=v8.3a | FileCheck %s --check-prefix=CHECKV83
; Armv8.3-A Pointer Authetication requires a special intsruction to strip the
; pointer authentication code from the pointer.
; The XPACLRI instruction assembles to a hint-space instruction before Armv8.3-A
; therefore this instruction can be safely used for any pre Armv8.3-A architectures.
; On Armv8.3-A and onwards XPACI is available so use that instead.
define i8* @ra0() nounwind readnone {
entry:
; CHECK-LABEL: ra0:
; CHECK-NEXT: str x30, [sp, #-16]!
; CHECK-NEXT: hint #7
; CHECK-NEXT: mov x0, x30
; CHECK-NEXT: ldr x30, [sp], #16
; CHECK-NEXT: ret
; CHECKV83: str x30, [sp, #-16]!
; CHECKV83-NEXT: xpaci x30
; CHECKV83-NEXT: mov x0, x30
; CHECKV83-NEXT: ldr x30, [sp], #16
; CHECKV83-NEXT: ret
%0 = tail call i8* @llvm.returnaddress(i32 0)
ret i8* %0
}
define i8* @ra1() nounwind readnone #0 {
entry:
; CHECK-LABEL: ra1:
; CHECK: hint #25
; CHECK-NEXT: str x30, [sp, #-16]!
; CHECK-NEXT: hint #7
; CHECK-NEXT: mov x0, x30
; CHECK-NEXT: ldr x30, [sp], #16
; CHECK-NEXT: hint #29
; CHECK-NEXT: ret
; CHECKV83: paciasp
; CHECKV83-NEXT: str x30, [sp, #-16]!
; CHECKV83-NEXT: xpaci x30
; CHECKV83-NEXT: mov x0, x30
; CHECKV83-NEXT: ldr x30, [sp], #16
; CHECKV83-NEXT: retaa
%0 = tail call i8* @llvm.returnaddress(i32 0)
ret i8* %0
}
attributes #0 = { "sign-return-address"="all" }
declare i8* @llvm.returnaddress(i32) nounwind readnone

llvm/test/CodeGen/AArch64/arm64-returnaddr.ll

; RUN: llc < %s -mtriple=arm64-eabi | FileCheck %s ; RUN: llc < %s -mtriple=arm64-eabi | FileCheck %s
define i8* @rt0(i32 %x) nounwind readnone { define i8* @rt0(i32 %x) nounwind readnone {
entry: entry:
; CHECK-LABEL: rt0: ; CHECK-LABEL: rt0:
; CHECK: hint #7
; CHECK: mov x0, x30 ; CHECK: mov x0, x30
; CHECK: ret ; CHECK: ret
%0 = tail call i8* @llvm.returnaddress(i32 0) %0 = tail call i8* @llvm.returnaddress(i32 0)
ret i8* %0 ret i8* %0
} }
define i8* @rt2() nounwind readnone { define i8* @rt2() nounwind readnone {
entry: entry:
; CHECK-LABEL: rt2: ; CHECK-LABEL: rt2:
; CHECK: stp x29, x30, [sp, #-16]! ; CHECK: stp x29, x30, [sp, #-16]!
; CHECK: mov x29, sp ; CHECK: mov x29, sp
; CHECK: ldr x[[REG:[0-9]+]], [x29] ; CHECK: ldr x[[REG:[0-9]+]], [x29]
; CHECK: ldr x[[REG2:[0-9]+]], [x[[REG]]] ; CHECK: ldr x[[REG2:[0-9]+]], [x[[REG]]]
; CHECK: ldr x0, [x[[REG2]], #8] ; CHECK: ldr x30, [x[[REG2]], #8]
; CHECK: hint #7
; CHECK: mov x0, x30
; CHECK: ldp x29, x30, [sp], #16 ; CHECK: ldp x29, x30, [sp], #16
; CHECK: ret ; CHECK: ret
%0 = tail call i8* @llvm.returnaddress(i32 2) %0 = tail call i8* @llvm.returnaddress(i32 2)
ret i8* %0 ret i8* %0
} }
declare i8* @llvm.returnaddress(i32) nounwind readnone declare i8* @llvm.returnaddress(i32) nounwind readnone

llvm/test/CodeGen/AArch64/arm64_32.ll

Show First 20 LinesShow All 247 Lines▼ Show 20 Lines
; CHECK-FAST: and x0, x30, #0xffffffff ; CHECK-FAST: and x0, x30, #0xffffffff
%val = call i8* @llvm.returnaddress(i32 0) %val = call i8* @llvm.returnaddress(i32 0)
ret i8* %val ret i8* %val
} }
define i8* @test_deep_returnaddr() { define i8* @test_deep_returnaddr() {
; CHECK-LABEL: test_deep_returnaddr: ; CHECK-LABEL: test_deep_returnaddr:
; CHECK: ldr x[[FRAME_REC:[0-9]+]], [x29] ; CHECK: ldr x[[FRAME_REC:[0-9]+]], [x29]
; CHECK-OPT: ldr x0, [x[[FRAME_REC]], #8] ; CHECK-OPT: ldr x30, [x[[FRAME_REC]], #8]
; CHECK-OPT: hint #7
; CHECK-OPT: mov x0, x30
; CHECK-FAST: ldr [[TMP:x[0-9]+]], [x[[FRAME_REC]], #8] ; CHECK-FAST: ldr [[TMP:x[0-9]+]], [x[[FRAME_REC]], #8]
; CHECK-FAST: and x0, [[TMP]], #0xffffffff ; CHECK-FAST: and x0, [[TMP]], #0xffffffff
%val = call i8* @llvm.returnaddress(i32 1) %val = call i8* @llvm.returnaddress(i32 1)
ret i8* %val ret i8* %val
} }
define void @test_indirect_call(void()* %func) { define void @test_indirect_call(void()* %func) {
; CHECK-LABEL: test_indirect_call: ; CHECK-LABEL: test_indirect_call:
▲ Show 20 LinesShow All 466 LinesShow Last 20 Lines

llvm/test/CodeGen/AArch64/returnaddr.ll

; RUN: llc -o - %s -mtriple=arm64-apple-ios7.0 | FileCheck %s ; RUN: llc -o - %s -mtriple=arm64-apple-ios7.0 | FileCheck %s
define i8* @rt0(i32 %x) nounwind readnone { define i8* @rt0(i32 %x) nounwind readnone {
entry: entry:
; CHECK-LABEL: rt0: ; CHECK-LABEL: rt0:
; CHECK: hint #7
; CHECK: mov x0, x30 ; CHECK: mov x0, x30
%0 = tail call i8* @llvm.returnaddress(i32 0) %0 = tail call i8* @llvm.returnaddress(i32 0)
ret i8* %0 ret i8* %0
} }
define i8* @rt2() nounwind readnone { define i8* @rt2() nounwind readnone {
entry: entry:
; CHECK-LABEL: rt2: ; CHECK-LABEL: rt2:
; CHECK: ldr x[[reg:[0-9]+]], [x29] ; CHECK: ldr x[[reg:[0-9]+]], [x29]
; CHECK: ldr x[[reg]], [x[[reg]]] ; CHECK: ldr x[[reg]], [x[[reg]]]
; CHECK: ldr x0, [x[[reg]], #8] ; CHECK: ldr x30, [x[[reg]], #8]
; CHECK: hint #7
; CHECK: mov x0, x30
%0 = tail call i8* @llvm.returnaddress(i32 2) %0 = tail call i8* @llvm.returnaddress(i32 2)
ret i8* %0 ret i8* %0
} }
declare i8* @llvm.returnaddress(i32) nounwind readnone declare i8* @llvm.returnaddress(i32) nounwind readnone